Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hkCVdklxjWLgRp-igdgPO4e8JhA.roa
File: hkCVdklxjWLgRp-igdgPO4e8JhA.roa (raw, json)
Hash identifier: 3/oPoxSzCWTIOkV4blyq9oIvHBAYlrRn0SouY0SzlX0=
Subject key identifier: 86:40:95:76:49:71:8D:62:E0:46:9F:A2:81:D8:0F:3B:87:BC:26:10
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A5C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hkCVdklxjWLgRp-igdgPO4e8JhA.roa
Signing time: Thu 27 Oct 2022 02:58:13 +0000
ROA not before: Thu 27 Oct 2022 02:58:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6748 (0x1a5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 27 02:58:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8640957649718D62E0469FA281D80F3B87BC2610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:85:ab:46:55:a4:19:32:29:ac:5a:5b:f2:61:
87:db:3b:d1:98:20:2f:af:24:d8:9c:f2:54:35:ef:
9f:8f:68:56:b5:2c:1b:57:a5:3c:ec:ef:cd:7c:d9:
33:e8:c4:82:99:6b:44:ba:50:57:b2:51:b1:26:5c:
eb:bb:19:e0:83:46:0e:20:6b:b8:7a:0b:fe:a4:69:
d9:08:d1:ac:39:84:ae:6f:d0:25:bd:7c:a8:95:7f:
bb:c6:ca:ee:41:4c:b9:15:19:03:ee:90:35:2d:13:
10:f2:34:a9:fb:4c:6e:c2:1e:1d:67:5c:69:43:d8:
e2:78:17:60:4b:fa:9a:77:e6:29:43:68:39:1c:56:
82:51:89:63:31:0f:d7:a7:29:75:f8:c0:79:e1:25:
a0:1d:e9:c5:f7:c2:18:fd:d7:20:78:a1:01:79:90:
94:0e:9a:da:59:3e:3a:68:91:f9:a4:bd:a1:ae:94:
d7:92:04:70:0f:b4:ad:3f:47:1b:c5:d1:48:6d:09:
d5:23:a4:9d:e9:49:f7:2d:ce:d3:06:61:a6:3f:c3:
9e:21:8d:5f:01:5b:f0:ee:f7:a0:28:de:64:b6:20:
b4:6f:8f:0c:0b:87:b3:7a:9d:1c:19:9f:04:bd:da:
a8:23:e0:35:fa:97:b3:ca:73:88:25:91:8c:90:19:
83:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:40:95:76:49:71:8D:62:E0:46:9F:A2:81:D8:0F:3B:87:BC:26:10
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hkCVdklxjWLgRp-igdgPO4e8JhA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.164.0/22
Signature Algorithm: sha256WithRSAEncryption
43:cd:5a:b6:91:36:95:5c:40:10:66:2c:1b:fd:a7:e3:fb:e1:
f2:29:6e:83:37:70:df:5c:ba:4f:f1:e6:38:04:d6:0b:4f:93:
94:50:55:6a:dc:77:30:a5:af:99:b3:29:d7:40:a6:b7:08:58:
e0:c6:84:8d:42:ce:19:7e:c0:c2:d4:12:84:35:d1:88:96:4c:
bf:b5:8a:cf:81:ce:54:c0:2e:d5:0d:30:66:44:39:7d:35:3b:
ad:e3:e9:33:41:2e:2e:63:99:96:b0:96:d5:ce:86:7b:ea:33:
77:bd:94:ef:33:57:4a:f4:36:b0:07:b2:c5:56:33:e9:98:26:
c4:d3:a2:11:99:69:87:f9:54:3c:63:f2:dc:e0:dc:13:e8:af:
c8:8c:d0:2e:d8:80:b2:32:d5:1f:c4:99:82:c9:28:41:38:fa:
0b:d6:45:72:de:e5:63:c8:a1:0c:e1:f3:5a:7a:b5:9e:88:84:
91:8d:3d:a4:40:37:ab:98:38:e5:53:b5:60:0c:0b:ea:9b:80:
53:81:01:b2:6b:08:b6:d0:7e:73:24:80:3e:1a:f4:32:16:20:
f8:c8:82:2c:5b:22:d8:c3:91:fd:86:fe:32:73:22:20:d7:d0:
ca:27:64:b3:01:1b:ad:e6:16:bd:78:59:c5:00:cf:db:83:1f:
97:d0:79:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org